Network Engineer Management
Resume:
Suresh
Sr. Network Engineer
***************@*****.***
Summary
* **** ***** ** ********** in the area of Networking, Security, Administration, AWS cloud services and Network support.
Extensive work experience on Cisco Routers, Cisco Switches, Load Balancers & Cisco Firewalls.
Expertise in deployment and configuration of routing protocols such as OSPF, EIGRP and BGP.
Configuration and implementation of BIG-IP load balancer.
Experience on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers.
Worked on F5 LTM series like 1600, 6400 and Virions for the corporate applications and their availability.
Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX series security appliance.
worked on Panorama firewall management tool which provides centralized monitoring and management of multiple Palo Alto devices from single window.
Knowledge on Amazon AWS Virtual private cloud services.
Knowledge & Experience on FortiGate Firewall Appliances.
Experience in Networking Area especially TCP/IP, Routing, Switching.
In depth knowledge with network monitoring and performance tools such as Solar Winds, Fore scout and Wireshark.
Strong hands on experience implementing and troubleshooting Switch technologies such as STP, RSTP, MSTP and VTP along with troubleshooting of inter-VLAN routing.
Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology.
Hands on Experience configuring and testing F5 iRules using Browser (IE), HTTP watch.
Knowledge in working with F5 Load Balancers and their implementation in various networks.
Knowledge of network security protocols such as IPSEC tunnels, GRE tunnels, NAT/ PAT, ACLs and VPN– MP-BGP.
Has expertise to work in Cisco/Checkpoint/Juniper/F5/Riverbed Products.
Experience in working with Cisco 2500, 2600, 2800, 3600, 3800, 7200 series Routers.
Strong hands on experience on configuring Cisco Catalyst 2900,2960, 3560, 3750, 4500, 4900, 6500 series and VMWARE 7000, 5000 and 2000 switches.
Working knowledge of routing protocols for voice: VoIP, IPSEC, Multicast, MPLS, DSCP/QoS, Cisco IOS and Wireless security protocols (I.E. 802.1x, EAP, WPA2).
Configuration, managing and implementation the Linux/Unix and Sun Solaris Server in Network.
Experience in Wireless LAN (IEEE 802.11) and deployment of light weight access point.
Migrated and implemented new solution with Cisco ASA firewall series 5505,5510,5540.
Experience in configuration of AAA with ACS protocols TACACS+, RADIUS and LDAP.
Experience in configuration of Checkpoint 600,1100,4800,12000 appliances.
Migration of Palo Alto firewalls from ASA.
Experience in configuration of Palo alto firewalls like PA2020, PA3050, PA5050
Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention URL filtering.
Implement duo security two factor authentications for remote access VPN on Cisco ASA.
Worked on various blades like IDS/IPS, URL filtering on Cisco ASA.
Experience with Solar Winds Orion monitoring.
Strong knowledge on networking concepts like TCP/IP, Routing and Switching.
Hands on experience on Up-gradation of Cisco IOS & Firmware of different Cisco devices & modules.
Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Experience in installation, configuration and Administration of windows server 2003/2008, Active Directory, Linux, Unix OS under various LAN and WAN environment.
Hands on experience in installing and configuring DNS and DHCP server.
Experienced in trouble-shooting both connectivity issues and hardware problems on Cisco based networks.
Strong problem-solving skills, extremely organized, detailed and deadline oriented.
Adapt in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
CERTIFICATIONS
CISCO CERTIFIED NETWORK PROFESSIONAL (CCNP)
CISCO CERTIFIED NETWORK ASSOCIATE (CCNA)
TECHNICAL SKILLS
Routers:
Cisco 1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200, 7600
Juniper M7i, J230, M320
Switches:
Cisco Catalyst 3550, 3750, 4500, 4900, 6500
sq. 2248, 5548 and 7010
Dell S4810, S60, S55
Firewalls & Load Balancers:
Cisco ASA 5540 series, Checkpoint, Palo alto PA2020, PA3050, PA5050, IPSEC and SSL VPN, IPS/IDS, IOS Firewall features, DMZ set up, F-5 LTM.
Routing:
OSPF, EIGRP, BGP, RIP, PBR, Route Filtering, Redistribution, Summarization, Static routing
Switching:
VLANs, Dot1Q, VTP, STP, RSTP, VLAN Maps, HSRP, GLBP, CEF, DCEF, Port Security
LAN/WAN Technologies:
Ethernet, Frame relay, MPLS, HDLC, PPP, T1, T3, OC Standard, DSL, ISDN
Protocols:
IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH
AAA Architecture:
TACACS+, RADIUS, Cisco ACS
Network Monitoring and Management Tools:
Solar winds, Wire Shark, SNMP, Elastic Search, Log stash and Kibana and What Sup Gold
Operating Systems:
Windows Server 2008 R2/ 2003, Windows XP Professional, Red hat Linux, UNIX Sun Solaris 9/8
EXPERIENCE
Publix, Lakeland, FL Dec 16 - Present
Sr. Network Engineer
Responsibilities:
Responsible for Configuring Cisco and Dell Routers and Switches.
Working experience with deployment of Pa-5000 series Palo Alto firewalls.
Implemented zone based firewalling and security rules on the Palo Alto Firewall.
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Worked on firewall technologies including general configuration, optimization, security policy, rules creation and modification of Palo Alto.
Monitoring Traffic and Connections in Palo Alto and ASA Firewall. Backup and restore of Palo Alto and Cisco ASA Firewall policies.
Configure CSM (Cisco Security Manager) for all Firewall, IDS/IPS management in the network.
Deployment and Management of Bluecoat proxies in forward proxy scenario as well as for security in reverse proxy scenario.
Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration.
Worked on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers.
Worked on F5 LTM series like 1600, 6400 and VIPRIONS for the corporate applications and their availability.
Used F5 GTM for external DNS resolutions configured all listeners and created all zone files, A record and Names.
Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view.
Worked on F5 VIPRIONS 2400 model with dual blades also had licensed this chassis with vamps which can run multiple instances and versions of BIG-IP.
Configuring, deploying &upgrading the Cisco, s 5672 Series Switch fabric links.
Configuration& troubleshooting of Cisco and Dell switches, routers and Firewall.
Deployed & Implemented rules and created various zones in Palo Alto firewalls like PA2020, PA5020, PA5050.
Experience on Panorama firewall management tool which provides centralized monitoring and management of multiple Palo Alto devices from single window.
Configuration and Installation of Cisco firewalls ASA (5510,5520 and 5540).
Migrated Cisco ASA Firewalls to Palo Alto firewall.
Knowledge & Experience on FortiGate Firewall Appliances.
Implemented Duo Security two-factor authentication as a service to access data centers via VPN.
Using SolarWinds Orion platform to monitor networking and systems management products.
Worked with IDS/IPS to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Ability to analyze, configure and troubleshoot networks.
Establishing VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
Worked on Amazon AWS and Microsoft Azure could network services.
Configure a Site-To-Site IPsec VPN to the Amazon AWS VPN Gateway with other vendor security appliances devices.
Configured and resolved various OSPF issues in an OSPF multi area environment.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs
Worked on Python, shell scripting and automation Rest APIs integrations
Implemented the numerous firewalls rules on the Palo alto with both Hide Nat and Static NAT.
DNS administration like adding/modifying/deleting IP and DNS assignments using log messages.
Providing Technical Support and solutions for Network Problems.
Upgrading IOS, troubleshooting network outages.
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Configured Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210.
Migrated to Juniper EX series switches from Cisco 3500 series and 6500 series switches.
Hands-on experience configuring, and troubleshooting Juniper MX, EX, QFX, and SRX platforms.
Experienced in installation, configuration and maintenance of Cisco ASR 9K, 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Nexus 7010, 5548, 2148 Catalyst Cisco 6500 (sup 720), 4500 (SUP 6), 3750, 2950 series Switches.
Experience configuring Virtual Device Context in Nexus 7k, 5k and 2k.
Decommissioning the Nexus 7K supervisors and Deploying latest software upgrades on Nexus 7K.
Troubleshooting the various issues while upgrading and installing the new supervisors on Nexus 7K
Environment: Cisco routers, switches, ASA Firewalls, Palo alto Firewalls, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols.
Barracuda Networks, Campbell, CA Jan 16 – Nov 16
Sr. Network Engineer
Responsibilities:
Responsible for Configuring Cisco and Juniper Routers and Switches.
Configured and resolved various OSPF issues in an OSPF multi area environment.
Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration.
Worked on F5 LTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, BGP v4. Configured IP access filter policies.
Configuring, deploying &upgrading the Cisco, Nexus 5000 and Nexus 7000 Series Switch fabric links.
Configuring OSPF and Static routing on Juniper M and MX series Routers.
Configuration& troubleshooting of Juniper switches, routers and Firewall.
Deployed & Implemented rules and created various zones in Palo alto firewalls like PA2020, PA2050.
Experience with Check Point Firewall Management station operations. Maintained and Configured Check Point VSX with firewall virtualization.
Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Cisco ASA and Check Point firewalls.
Developed and executed datacenter migration plan for all managed security services such as firewalls, IDS, VPNs and authentication servers with no impact on production environments.
Maintain, and troubleshoot Cisco IOS SIP gateways and TDM trunks, plus VoIP UC servers, infrastructure, and applications.
Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Ability to analyze, configure and troubleshoot networks.
Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
Establishing VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN
Worked on troubleshooting and resolving issues escalated by the NOC and internal systems, including developing, implementing and deploying emergency hot fixes within a global network
Configuration and Installation of Cisco firewalls Pix and ASA (PIX 510, 515E, 525 and ASA 5520, 5540).
Migrated PIX Firewalls to ASA Firewalls
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
Implementing MPLS VPN for the Branch locations
Configured and deployed sir
and defined class of service (COS) WRED and WFQ for bandwidth management.
Handled deployment and management Checkpoint GAIA, R75, R71, R65 and Cisco ASA 5500 series
Implemented the numerous firewalls rules on the Checkpoint with both Hide Nat and Static NAT.
Configured the Checkpoint Anti-Spoofing on the right interfaces to enable the traffic.
DNS administration like adding/modifying/deleting IP and DNS assignments using log messages.
Providing Technical Support and solutions for Network Problems.
Knowledge of VoIP, Cisco Unified Communications Manager (CUCME), AAA, RADIUS, TACAACS+.
Upgrading IOS, troubleshooting network outages.
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Made DHCP and DNS changes through InfoBlox.
Configured DNS entries through the use of Infoblox.
Used Infoblox to create and manage newly created DHCP scopes.
Responsible for Enterprise DHCP Server (InfoBlox) and VPN, SSL, and Net Motion Accounts.
Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
Worked on Datacenter Migration project to migrate the existing 6509, 4509 devices to a Nexus 7010, 5010 and Nexus 2248 FEX based solution.
Implemented VOIP and QoS policies for initial deployment of IPT. This involved both switch and router configuration and ran over a frame-relay WAN.
Involved in configuring IP Quality of service (QoS)
Ensuring optimal traffic routing, analyzing and QoS for the network.
Troubleshoot connectivity issues involving VLAN’s, OSPF, QoS etc.
Involved in designing and implementing QOS and policy map to 2800 series routers for all the branches.
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, Palo alto, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols.
Lochbridge, Lansing, MI Oct 14 – Jan 16
Network Engineer
Responsibilities:
Configuring, deploying & upgrading the NX-OS operation system in the data center
Replacing the 3750X switch with a stack of 4507 switches and creating Volans for Production and Wireless whose traffic was segregated by access-lists to restrict traffic flow between them.
Experience working with using EIGRP/OSPF as an internal Company routing protocol and Using BGP as a WAN protocol towards Service Provider
Worked on F5 LTM series like 6400, 6800, 8800 for the corporate applications and their availability
Experience with configuring Virtual Server and Configuring Load balancing methods in F5 LTM
Implementing & troubleshooting of Juniper switches, routers and Firewall.
Involved in configuring Juniper SSG-140, Cisco PIX and ASA firewall.
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture
Experience configuring Virtual Device Context in Nexus 7010
Configured 6500 to support a lot more functions with special feature blades, like firewall, content load balancing, Flex WAN
Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 us.
routers and switches at access level to 2950, 3550.VMWARE
Network Management: Configuring brocade switches, FortiGate firewalls. Automated backups and data collection for networking equipment via PowerShell
Configured, monitored and troubleshoot Cisco's ASA 5500/PIX 515 security appliances,
Migrating PIX Firewalls to ASA Firewalls
Defined and rolled out rules firewall policies.
Experience with Virtualization technologies like Installing, Configuring and administering VMware’s/ESXi and VSphere server environment
Technical leader of a VOIP specialist team who do design, implement and support Cisco Unified Communications environment too many customers
Involved in Irule management like loading rules, writing Irule syntax using TCL language
Support customer with the configuration and maintenance of PIX and ASA firewall systems definition, problem solving, design advice, troubleshooting, updating, maintenance, etc.
Identify, design and implement flexible, responsive, and secure technology services
Troubleshooting the issue using Wireshark if an individual is not able to connect to the installed Aironet Access points.
Experience with Firewall Administration, Rule Analysis, Rule Modification.
Excellent knowledge in Routing, Switching, Firewall and Gateway technologies, system design, wireless design, data network design, capacity management and network growth.
Deployed the Cisco 3500 Access Points using Cisco Wireless controllers 5500 and 2500 and WCS System.
Experience with Monitoring wireless networks and performing site surveys.
Hands on Experience with Cisco Wireless Controllers 5500's and 2500's and coming to access points, worked on 3700's, 3500's and 1142 access points.
Experience in Wireless LAN (IEEE 802.11) and deployment of light weight access point.
Utilized Cisco Firepower policies to manage applications, Snort rules, and URL blocking.
Cisco ASA security appliances including Sourcefire, Firepower services and Fire Sight Management Console.
Involved in firewall policy management, support on Cisco ASA 5585X, 5540, 5516x, 4110 Firepower firewalls also configured Fire sight Intrusion detection and Checkpoint Firewalls, Juniper SRX 5600, 3400, 1500 etc., also Palo Alto.
Designed, planned, and deployed next generation ASA 5515X firewalls with ng IPS, AMP, and Malicious URL filtering. Redundancy and load-balance achieved with failover groups in multiple context mode. Firepower services managed via Fire Sight management server.
Utilized VMware and Hyper-V virtualization. Performed physical to virtual conversions of servers and workstations.
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP, BGP protocols, VLANS, wire shark, IP, TCP, UDP, NAT, DHCP, HTTP, SSH.
KPG, Century, KS Jan 13 – Sep 14
Network Engineer
Responsibilities:
Worked on Cisco Layer 2 switches (spanning tree, VLAN).
WAN Infrastructure running OSPF & BGP as core routing protocol.
Support various Routers like 2600/3600/7200 series routers.
Tested authentication in OSPF and BGP.
Configured and troubleshoot OSPF and EIGRP.
Troubleshooting IOS related bugs based on past history and appropriate release notes.
Work on different connection medium like Fiber and Copper Connectivity.
In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
Performed and technically documented various test results on the lab tests conducted.
Install and maintain Network operations involving VOIP and IP. Troubleshooting and repairing communications equipment to include satellites, UHF, and VHF equipment
Planning and configuring the entire IP addressing plan for the clients' network.
Assist the certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
Supported networks, which are comprised of 200+ Cisco devices.
In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
WAN Infrastructure running OSPF as a core routing pro NEXUS
Follow process & procedures for change & configuration management.
Configured and deployed Riverbed WAN Optimizer within various locations around the USDA enterprise network. Implemented and developed/executed test plan on network before and after devices were activated
Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513.
Deployed the switches in high availability configuration with HSRP.
Experience with Riverbed optimization design and implementation
Configured UDLD, port-fast, uplink fast and other spanning tree features.
Support various Series of Cisco Routers like 7200/7600 series.
Support Complex 6500 /5500 Series Switches.
Worked on Cisco Routers Models# 2600-2800 and ISR model;
Network Monitoring using tools like Cisco Works 2000.
Created Lab demonstrations for new technology deployments with loaner equipment from various vendors and presented the findings to upper management.
Troubleshoot network problems using Packet Analysis tools like Ethereal.
Experience in installing, configuring and troubleshooting VMware View Composer and View Connection Manager to make Virtual Desktop Infrastructure efficient and to simplify desktop administrative
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, IP, TCP protocols.
HCL, India Mar 11 – Dec 12
Network Engineer
Responsibilities:
Responsible for the configuration, implementation and operation of Cisco 3745 routers, Cisco 6509 and 3560 L2/L3 switches
Removed Cisco 3600 and 2600 series routers and Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 or 3560 L2/L3 switches.
Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Provided port binding and port security wherever required. Provided router redundancy through HSRP.
Configured ether channels using PAgP and LACP.
Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
Provided testing for network connectivity before and after install/upgrade
Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers
Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external
Escalation procedures and customer notifications.
Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
Worked on HSRP and GLBP for first hop redundancy and load balancing.
Prepare, update, and maintain technical and logistical network documentation
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, IP, TCP protocols.
Mindtree, India Jun 09 – Feb 11
Network Engineer
Responsibilities:
Configured EIGRP for Lab Environment.
Migration of RIP V2 to OSPF routing protocols
Implemented ISL and 802.1Q for communicating through VTP.
Working with Client teams to find out requirements for their Networks.
Designing solutions for frozen requirements using Cisco Routers and Switches.
Deploying the network infrastructure to meet the requirements.
Created VLAN and Inter-VLAN routing with Multilayer Switching.
Providing technical consultancy for better application response using QoS
Monitor performance of network and servers to identify potential problems and bottleneck.
Performed RIP, OSPF, BGP EIGRP routing protocol administration.
Installed wireless access points (WAP) at various locations in the company.
Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
Troubleshoot network problems using Packet Analysis tools like Ethereal.
Real time monitoring and network management using Cisco Works LMS.
Provided technical support on hardware and software related issues to remote production sites.
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, Cisco work, WAP.
Contact this candidate